Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2019-20139

Disclosure Date: June 19, 2019 (last updated November 27, 2024)
In Nagios XI 5.6.9, XSS exists via the nocscreenapi.php host, hostgroup, or servicegroup parameter, or the schedulereport.php hour or frequency parameter. Any authenticated user can attack the admin user.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0